How do I? - Page 136 - Burp Suite User Forum

Firefox

I'm trying to install Burp's certificate to the latest version of Firefox (Windows), but once I try to import the certificate (which I got by proxying through Burp to http://burpsuite), I get the error message "This is not a...

How to install CA certificate in Rooted Android Phone

Hi, plz guide me how to install certificate in rooted android phone .I am using samsung j6 and android v10. I follow some tutorials but give me these errors i.e: 1)The client failed to negotiate a TLS connection to...

Cant intercept request in Android 7

So I've installed cert in system root device. i can see PortSwigger in System Trusted credentials. I've set proxy in burp suite with port 8080 and bind to address all interfaces. I've set proxy in my emulator with ip address...

call graphql api

Hi dear, I wanted to call graphql api, but I have a problem in my code, I use .net 6.0. When I called the api from PostMan everything's are OK, but when I call it from my code the response is 200, but I get this...

Address Agent Machine Pools in Graphql

Hi, Able to run scans with GraphQL no issues, but how to send a scan to a specific Agent Machine Pool in GraphQL? thanks

Integrating burp-suite to azure DevOps.

java -jar path/to/ci-driver.jar https://your-enterprise-server:8080 --api-key=secret --site-id=7 --min-severity=high --min-confidence=certain --report-file=scan-report.html --report-type=summary The batch script above...

Export response body from intruder

Hi, I want to export response body result from Intruder to separate files. I found an LFI and the content of each file is in the response body. I want to extract all of those files to their names, could it be possible...

Unable to download burp suit community Edition

Hi, I have tried to download burp suit community Edition several times, but once I click the download button, it just stops for hours without downloading it.

Burp trial request - provide bussiness email

when i request free trial of burp pro it says that i have to enter a valid business email address - my email is my account email

Getting Started website instructions aren't working

The BurpSuite documentation web page https://portswigger.net/burp/documentation/desktop/getting-started/intercepting-http-traffic explains how to modify a request in Burp Proxy. The instructions say to open the embedded...

Changes in Requests

Hello, When I toggle off the interception in the proxy tab, does Burp Suite change anything in the request? And if it does, how can I stop it?

Copy a Cookie Value as a Request Header or Parameter

There doesn't seem to be a native way to do copy a value either stored in the cookie jar or during the http request in the cookie header to a request parameter or request header. I've seen quite a few web applications...

Analyize traffic of mobile application

I would like to analyze the traffic of existing applications. By configuring burp suite and the proxy for mobile testing I also get the traffic of the whole Android System. But I only want to have the traffic of the...

Intruder attacks

I want to insert 2 payloads in the web request in intruder. let the 1st payload be 60 passwords and the second payload contains 5 values only. I want to change the second payload after each 12 passwords in payload 1 but...

An issue in payload for the OOB SQL injection detection

Hi, In my recent penetration testing I discovered a few instances of Blind SQL Injection in a .NET application with a "Microsoft SQL Server 2000" back-end database system. I used the following payload for the OOB SQL...

Integrating burp-suite to azure DevOps.

java -jar path/to/ci-driver.jar https://your-enterprise-server:8080 --api-key=secret --site-id=7 --min-severity=high --min-confidence=certain --report-file=scan-report.html --report-type=summary The batch script above...

Waiting for Agent Error

I successfully installed and scanned a URL with Enterprise (scan since deleted). I attempted another scan today and receive “waiting for agent”. After clicking on settings => agents there is a blue triangle “pending...

Backup/Restore Burp Suite Enterprise to new database backend

I installed BSE with a postgres backend and now need to transfer it to mssql. I see a database_migration script in /opt/burpsuite_enterprise/ but no mention of it in docs. Is this only for the internal H2 to external DB? Can...

Uninstall Burp Suite Enterprise Free version

Hello, My 30 Days free version usage is Completed. Now I want to install Burp Suite Enterprise Edition. But I am not able to uninstall as it shows Failed to delete installation directory alert. Please help me in uninstalling.

Exploiting HTTP request smuggling to perform web cache deception - Lab not working.

I have tried this lab more than 20 times now. With community and professional versions. I have also followed the steps mentioned and every time I get stuck in the end, I just don't get a static file with the victim's API...

Firefox

How to install CA certificate in Rooted Android Phone

Cant intercept request in Android 7

call graphql api

Address Agent Machine Pools in Graphql

Integrating burp-suite to azure DevOps.

Export response body from intruder

Unable to download burp suit community Edition

Burp trial request - provide bussiness email

Getting Started website instructions aren't working

Changes in Requests

Copy a Cookie Value as a Request Header or Parameter

Analyize traffic of mobile application

Intruder attacks

An issue in payload for the OOB SQL injection detection

Integrating burp-suite to azure DevOps.

Waiting for Agent Error

Backup/Restore Burp Suite Enterprise to new database backend

Uninstall Burp Suite Enterprise Free version

Exploiting HTTP request smuggling to perform web cache deception - Lab not working.

Burp Suite Support Center